ELSA-2021-3945

ULN >
Oracle Linux Errata repository >
ELSA-2021-3945

ELSA-2021-3945 - redis:6 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2021-10-20

Description

[6.0.9-5]
- fix denial of service via Redis Standard Protocol (RESP) request
CVE-2021-32675

[6.0.9-4]
- fix lua scripts can overflow the heap-based Lua stack
CVE-2021-32626
- fix integer overflow issue with Streams
CVE-2021-32627
- fix integer overflow bug in the ziplist data structure
CVE-2021-32628
- fix integer overflow issue with intsets
CVE-2021-32687
- fix integer overflow issue with strings
CVE-2021-41099

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	redis-6.0.9-5.module+el8.4.0+20384+68ad316c.src.rpm	b70ec67d41131c179d1d3a1995c44473564f363fb5cebc42eb8132913d30c666	-	ol8_aarch64_appstream
	redis-6.0.9-5.module+el8.4.0+20384+68ad316c.aarch64.rpm	60ad92c3b7b18f583d955bb60ad2fd25771a7b04607dcbedc5b5b089fa1cc66b	-	ol8_aarch64_appstream
	redis-devel-6.0.9-5.module+el8.4.0+20384+68ad316c.aarch64.rpm	8b15d5ac7e8f8c74f8b3635b7efb84116cf95e089bd2ead8f075f447d0df9aef	-	ol8_aarch64_appstream
	redis-doc-6.0.9-5.module+el8.4.0+20384+68ad316c.noarch.rpm	6d38dbdd4a8e5b4eca5466ab7c4d487fd74cab1f79d7a81b3ae884e8356eb515	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	redis-6.0.9-5.module+el8.4.0+20384+68ad316c.src.rpm	b70ec67d41131c179d1d3a1995c44473564f363fb5cebc42eb8132913d30c666	-	ol8_x86_64_appstream
	redis-6.0.9-5.module+el8.4.0+20384+68ad316c.x86_64.rpm	815f9d2df3a086cb9d1dfe77312ffc6bd52e907773cce49be001ec312781ccfc	-	ol8_x86_64_appstream
	redis-devel-6.0.9-5.module+el8.4.0+20384+68ad316c.x86_64.rpm	ee3280080771c5bcdd190b57446d740ec5a9fbaf383507391bc8ecc45d5c1376	-	ol8_x86_64_appstream
	redis-doc-6.0.9-5.module+el8.4.0+20384+68ad316c.noarch.rpm	6d38dbdd4a8e5b4eca5466ab7c4d487fd74cab1f79d7a81b3ae884e8356eb515	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691